[pchelpers] News: MPack Runs Rampant

• From: Scott McNay <wizard@xxxxxxxx>
• To: pchelpers@xxxxxxxxxxxxx
• Date: Wed, 27 Jun 2007 20:41:41 -0500

Hi folks,

MPack Runs Rampant
June 27, 2007

Recently, intruders using MPack established domains to host Web sites
to contain links to attack code and broke into numerous Web hosting
accounts (and quite possibly privately operated Web sites) to include
attack code in the pages of those unsuspecting, compromised Web sites.
The attack code typically consists of IFRAME tags that tell a
visitor's browser to load a malicious Web page inside an existing Web
page. The browser can be instructed to load a malicious Web page
without the user having to take any action other than to visit the
compromised Web site, and the IFRAME can be coded to not even be
noticeable on the compromised site. So the visitor might remain
completely unaware that exploitation is taking place.

More:
http://www.windowsitpro.com/Windows/Article/ArticleID/96352/96352.html

Scott: This sounds like a one-stop tool for browser exploitation that
can use all known exploits.

-- 
Scott.



-- 
-------list-services-below-----------
Regards, John Durham (list moderator) <http://modecideas.com/contact.html?sig>
Freelists login at http://www.freelists.org/cgi-bin/lsg2.cgi
List archives at http://www.freelists.org/archives/pchelpers
PC-HELPERS list subscribe/unsub at http://modecideas.com/discuss.htm?sig
Latest news live feeds at http://modecideas.com/indexhomenews.htm?sig
Good advice is like good paint- it only works if applied.

• » Related posts
• » Previous by Date
• » Next by Date
• » This Month's Archive
• » Main Archive Page

• » View list details
• » Manage your subscription